CVE-2023-46132

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Nov 14, 2023
Updated: Nov 22, 2023
CWE ID 362

Summary

CVE-2023-46132 is a high-severity vulnerability affecting Hyperledger Fabric, an open-source distributed ledger framework. The vulnerability allows an adversary to cross-link transactions in a block, leading to different parsing of transactions by peers and deviation in the world state. This vulnerability exists due to the insecure way Fabric hashes transactions by simply concatenating them. The affected products include various versions of Hyperledger Fabric. To remediate the vulnerability, it is recommended to upgrade to a patched version of Hyperledger Fabric that addresses the issue. Exploitation of this vulnerability can result in integrity impact, potentially compromising the accuracy and consistency of data within an organization's blockchain network.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-46132 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options